![]() ![]() I choose GeoIP2-ISP.mmdb as the one to use. It turns out BIND attempts to open databases by name in bin/named/geoip.c I had assumed it would readdir() its way through the geoip-directory, but it doesn’t. And of course I wanted to better understand how this all fits together. (We’ve also seen something similar using GeoDNS with the PowerDNS GeoIP back-end.) The use-case I envision is permitting queries for certain domains to individual departments/divisions within large organizations by name instead of coding up ACLs with addresses in them. I thought it might be interesting to create my own GeoIP database and use that in BIND, somewhat along the lines of the experimental Location-Based (Geo-)DNS in a Private Network I did many years ago. ISC’s Using the GeoIP Features knowledge base article has further information and an example using match-clients in a view. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |